IT DRILLDOWN
Virtualization
 
NEWSLETTERS
 

CIO.com updates, insights and advice on technology, management and your career.

 Advice and Opinion
 CIO Consumer IT
 CIO Leader
 CIO Enterprise
 CIO Insider
More Newsletters | Edit Profile
 
RSS Feeds »
 
 
SUBSCRIBE TO CIO
 

Are you involved in setting the direction for your company's IT budget or strategy?

Apply today for a FREE subscription to CIO Magazine!

» Subscription Services

» Reprints

 

 


Tue, Feb 12, 2008 14:49 EST

Top Ten Virtualization Risks Hiding in Your Company

Posted by: Laurianne McLaughlin in Best Practices

Topic: Infrastructure

Blog: Inside Tech

Current Rating: 1 Comments: 4

What are the management risks and problems hiding inside your virtualization effort? That's a question that David Lynch, VP of marketing for Embotics, tries to help IT groups answer. Embotics, part of CIO's recent list of 10 virtualization vendors to watch, provides what it calls VM lifecycle management. The company's V-Commander software (which integrates with VMware's VirtualCenter management suite) promises to help you track VMs from cradle to grave. The tool lets IT groups apply policies and automation to that tagging and tracking work.

Lynch recently shared with me a top 10 list that his staff uses when it meets with IT leaders to discuss common management risks and problems with virtualization. The list reflects actual problems that Embotics has found while helping multiple customers audit and secure virtualized server environments.

I find this list thought-provoking, realistic and worth sharing. Check out the below questions and ask yourself: Could any of these problems be hiding in my virtualized environment?

As for how these problems arose in the first place, virtualization bubbled up from a few people in the server or application development group at many companies, instead of being planned top down from the CIO. Then virtualization spread quickly, and spread further into the production IT environment, because IT and business teams liked the results. As that spread continues, IT finds itself now having to step back and get more formal about managing virtualization, to avoid management complexity and security risks.

"Most of our customers have been very busy operationally," Lynch says, "now they are starting to have to deal with issues of control."

Now, on to Embotics' top 10 list of potential troublemakers lurking in virtualized environments:

1. Rogue VMs

How tightly do you control who can create a virtual machine? It's a key security question. When you fire up inactive or suspicious VMs, you may find more than you expect. One Embotics customer fired up an offline VM to confirm what it was, and found a DHCP server which took down the production network, Lynch says.

2. Unpatched VMs

Remember, users can run VMs on their own PCs using downloadable software from VMware's website, for example. Audit all of your company's machines for such VMs and you may find what Embotics customers have, Lynch says: Unauthorized operating systems and a lack of security patches on those VMs.

3. VM Naming Messes

As you track all the VMs in your company, logical names will be helpful. But chances are, IT pros throughout your organization started naming VMs long before you realized how far virtualization would spread, long before anyone thought about imposing a naming system. Think about naming conventions now, Lynch advises.

4. Production Environment Border Problems

Most IT organizations run pre-production VMs (say for application development work, or

Keywords: embotics, virtualization
You do not have flash or javascript support.
Average (1 vote)
1
comment icon Reply
Digg this
Slashdot
Reddit
 
All Comments Comments
 
Thu, Feb 14, 2008 19:13 EST
Biggest Risk to Virtual is Physical!
Anonymous user
Posted by: Kevin Epstein
Rating:

As always, speaking from an admittedly biased view (4+ years at VMware, 1.5 at Scalent), I think the comments above missed risk #11, the physical world outside any hypervisor host.

All hypervisors still depend on underlying physical machines being correctly connected to network and storage -- in multiple paths, to allow access for all VMs correctly.

In other words, all the above article comments apply to moving around the virtual machine "fish" inside the hypervisor OS "fishtank" -- but who moves and manages the associated fishtanks (with associated network & storage I/O plumbing etc)?

You do not have flash or javascript support.
 
Fri, Feb 15, 2008 9:55 EST
yes, good point
Posted by: Laurianne McLaughlin
Rating:

thanks for bringing that up. agreed, IT must keep up physical security that houses virtual infrastructure. Your fish tank analogy is a good one. What do you see as the key mistakes or things that get overlooked now with regards to network, storage, plumbing, etc.?

You do not have flash or javascript support.
 
Fri, Feb 15, 2008 18:31 EST
Key Mistakes... continued
Anonymous user
Posted by: Kevin Epstein
Rating:

Maybe we should get together and write another article on this topic, as these "reply" blog areas are a bit small...

Bias warning: I believe in the following -- which is why I work at Scalent, whose product solves the issues. That said, they are general problems.

My quick answer to "Got (Server) Virtualization, Now What?" is:

1. Network connectivity matters
All hypervisor hosts in a group or "cluster" who are going to share virtual machines -must- share a LAN subnet.

2. Storage access matters
All hypervisor hosts in a group or "cluster" who are going to share virtual machines -must- share storage access.

3. Hardware failover must be anticipated
VMs will fail to another clustered hypervisor... if, and only if, one exists and has cycles! (See point 1 and 2)

4. Movement between Physical and Virtual (and back, repeatedly) is a necessity in real data centers, and is -not- usually seamless (unless running Scalent ;)

5. Non-x86 Hardware
Not all hardware is x86! Sun now has LDOMs, AIX too, how to manage workloads between those and the rest of the virtual universe?

That's a start...

- K

You do not have flash or javascript support.
 
Fri, Feb 22, 2008 8:19 EST
Outside the Data Center
Anonymous user
Posted by: Bill
Rating:

These risks is seem pragmatic but only focused on technology issues. How do you deal with these issues organizationally with process and policy? Especially when you think of a VM's that exist outside the data center (which is where you will likely run into issues like virtual appliances and rogue VM's). I've been following some of the startups (embotics, fortisphere, manageiq, etc) and VMware (with stage manager, lifecycle manager, lab manager) and they seem to have similar messaging on this issue. Is this issue going to take multiple products?

You do not have flash or javascript support.

About this Blog

Keeping a watchful eye on the technology trends and products that can make your life easier--or oh-so-much more difficult.

Start a Conversation

Click to post

Got something to say? We want to hear it! Click the Post button to get started. GO»

EXPERT ADVICE

See our roster of experts.

Advice & Opinion from more than 90 of IT's most insightful thinkers.

advertisement

TOP USERS
UserPoints
1. laith al jazi12550
2. Akshay Upadhye7650
3. Chris Moore6750
4. abdhiraj6175
5. remi5525
UserPoints
6. Mark Cummuta3975
7. Brian Flora3800
8. asengupta3750
9. tmmackay3500
10. Al Sacco3400
  PARTNERS       PODCASTS       WEBCASTS    
 

Enterprise Content Management: From Strategy to Solution

Enterprise content management (ECM) has become an important competence and infrastructural technology, particularly for large and medium-sized organizations. Hear about industry trends for ECM and why standardizing your ECM platform is so critical to your success during this roundtable discussion.

Sponsored by IBM  View This Webcast »

 

The CIO's Guide to Wireless in the Enterprise

This guide provides a basic overview and worksheet of mobile computing for those who are interested in evaluating a wireless enterprise solution.

Sponsored by Blackberry
  Read This White Paper »

 

The Problem with Business Software & How Visualization Can Fix It

When was the last time you were involved with a business application that was delivered on time, on budget and with all the features needed to compete successfully in the market? If you answered "Never" or "Not lately", youre not alone. This white paper discusses how iRise(TM) can help by providing a collaborative software platform that enables businesses to quickly visualize and test market applications before a single line of code is written.

Sponsored by IBM  Read this White Paper »

More Partners »
Resource Alerts

Get instant email notifications by topic when white papers, webcasts, and case studies are added to our library.

NAC launch from HP Procurve Podcast with Lippis Report, Part 1

ProCurve Networking by HP joins the Lippis Report to announce major product and organizational additions to their ProActive Defense strategy.  Read More »

 

Accenture's View on Web 2.0 and its impact on business

Publisher at CIO magazine, Bob Melk, talks to Accenture's Blair Jones about the emergence of Web 2.0...  Read More »

 

A Best-Practice Framework for Virtualization

This podcast offers insights and perspective on the various issues that relate to virtualization...  Read More »

More Podcasts »
Resource Alerts

Get instant email notification when white papers, webcasts, and case studies are added to our library. Don't just be up-to-date—be up to the minute with our new Resource Alerts.

Unleash new levels of performance in your workplace

Publisher emeritus at CIO magazine, Gary Beach, talks with Forrester analyst Erica Driver about the current and future state of workplace technologies...  Read More »

 

Get Control of Mobile Data (and More): Improve security and reduce costs with a mobility management platform (Video webcast)

Mobility raises productivity. But IT departments are hard-pressed to protect mobile data and to manage security software, wireless clients and regulatory compliance for mobile workers...   Read More »

 

The Universal Wireless Client: How to simplify mobility and reduce the cost of supporting mobile workers (Video webcast)

Mobile workers want to use all types of wireless networks: WiFi, 3G cellular networks, corporate WLANs and home wireless networks. But how can IT support...  Read More »

More Webcasts »
Resource Alerts

Get instant email notification when white papers, webcasts, and case studies are added to our library. Don't just be up-to-date—be up to the minute with our new Resource Alerts.

 
NEWSLETTER

Sign-up for the Advice & Opinion Newsletter

 
FEATURED SPONSORS
 
 
 
SPONSORED LINKS
 

Reducing Data Center Costs with Data Deduplication: A TCO Analysis

Cost-Effective Data Center 1U Server Solutions

Automate Business Processes - Try a Free Mashup Composer

Read Forrester's advice for deploying an enterprise mobile solution

Do the math-calculate the impact of mobile device deployment on your bottom line

Easily manage the Mac in your Enterprise

GET YOUR VoIP ONTM! Win 2 Years of Hosted VoIP from Cypress. $100,000 retail value. Enter today!

Speed, agility, flexibility - The HP BladeSystem c-Class

See why 93 of the Fortune Global 100 depend on Blue Coat.

White Paper: How Visualization Can Fix Business Software Problems

Oxford International Modernizes Vehicle Order Management System

Learn about the Three Pillars of Data Protection

Putting Open source to the test

Juniper Networks is changing the economics of networking with a no-compromise, highperformance and service-oriented approach

Research about the efficiencies created by different operating systems.

IT Outsourcing: To Rebid or Renegotiate Webcast

Create and Run Any Application On-Demand

A New Generation of Software as-a-Service (SaaS) Solutions

Master Data Management: The Approach Determines the Results

Executive Strategies to Achieve Consistent Performance & Availability across the Enterprise

Implementing Knowledge Management

Efficient by design: Watch this flash demo of the Quad-Core AMD Opteron Processor

Renowned Engineering Institution Chooses AMD Processor-Based Servers

Seeing is Believing: The Value of Video Collaboration

Learn about Outsourcing Beyond India

Build up or Tear down? See how UC makes sense with Nortel. Calculate your UC ROI

Microsoft System Center - Designed For Big

Choose a mobile device platform with familiar programs and simplified management

Improve device management - Microsoft® System Center Mobile Device Manager

Explore the interactive whitepaper: Rightsizing Blades for the mid-market

Easily integrate the Mac in your Enterprise

Telwares helps firms validate, manage and optimize their telecom spend

TDWI Research report clears confusion about automating data governance

Taking Document Automation to the Next Level

Webcast: Transformation of Application Development

Webcast: Building an Optimized Infrastructure

How to Avoid the Worst Practices in Business Intelligence

White Paper: Juniper Networks Ethernet Switching Solutions Reduce Operational IT Expenses

Webcast: Learn why companies must invest in an agile network infrastructure

White Paper: Businesses Thrive by Unifying Business Communications

Run Desktop and CRM Applications Side by Side with Salesforce & Google

User Interface as a Service - Visual Force

The Combined Power of Salesforce and Google Apps

Unified Communications Software: The Death of VoIP?

Learn how industry leaders systematically evolve their systems forward to maximize results while minimizing risks

Enhancing Online Sales and Support

HP and Oracle deploy unbreakable computing infrastructure at Replacements, Ltd.

Telepresence for the Enterprise: Key Verticals and Lines of Business

High-Definition: The Evolution of Video Conferencing

Extracting Value from Your Most Important Intangible Asset